PT-2026-2490 · Go+2 · Go+2
Coia Prant
·
Published
2025-01-01
·
Updated
2026-05-21
·
CVE-2025-68121
CVSS v2.0
10
Critical
| Base vector | Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Go versions prior to 1.26 Release Candidate 3
Description
The issue resides within the crypto/tls package, specifically during TLS session resumption. If the underlying
Config object has its ClientCAs or RootCAs fields modified between the initial handshake and a resumed handshake, the resumed handshake might incorrectly succeed. This can occur when using Config.Clone followed by modifications to the cloned configuration, or when utilizing Config.GetConfigForClient. This could allow a client to resume a session with a server it shouldn't, or vice versa. The issue also relates to the copying of automatically generated session ticket keys during Config.Clone and the failure of session resumption to account for the expiration of the full certificate chain.Recommendations
Update to Go version 1.26 Release Candidate 3 or later.
Exploit
Fix
DoS
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
ALSA-2026:18913
ALSA-2026:19013
ALSA-2026:2706
ALSA-2026:2708
ALSA-2026:2709
ALSA-2026:2914
ALSA-2026:2920
ALSA-2026:3035
ALSA-2026:3040
ALSA-2026:3092
ALSA-2026:3187
ALSA-2026:3188
ALSA-2026:3291
ALSA-2026:3297
ALSA-2026:3298
ALSA-2026:3336
ALSA-2026:3337
ALSA-2026:3340
ALSA-2026:3341
ALSA-2026:3343
ALSA-2026:3752
ALSA-2026:3753
ALSA-2026:3839
ALSA-2026:3840
ALSA-2026:3842
ALSA-2026:3864
ALSA-2026:3898
ALSA-2026:3928
ALSA-2026:3985
ALSA-2026:4164
ALSA-2026:4174
ALSA-2026:4177
ALSA-2026:4672
ALSA-2026:5146
AZL-76653
AZL-76662
AZL-76665
BDU:2026-03408
BIT-GOLANG-2025-68121
CLEANSTART-2026-AC65885
CLEANSTART-2026-AE87452
CLEANSTART-2026-AH29678
CLEANSTART-2026-AL68245
CLEANSTART-2026-AN01004
CLEANSTART-2026-AN32474
CLEANSTART-2026-AP81168
CLEANSTART-2026-AR20742
CLEANSTART-2026-AW97162
CLEANSTART-2026-BB17877
CLEANSTART-2026-BB70412
CLEANSTART-2026-BB83999
CLEANSTART-2026-BC17682
CLEANSTART-2026-BG69533
CLEANSTART-2026-BK17545
CLEANSTART-2026-BK28579
CLEANSTART-2026-BK44511
CLEANSTART-2026-BM53321
CLEANSTART-2026-BP32212
CLEANSTART-2026-BS27946
CLEANSTART-2026-CB00984
CLEANSTART-2026-CB01846
CLEANSTART-2026-CC08450
CLEANSTART-2026-CD91667
CLEANSTART-2026-CH40794
CLEANSTART-2026-CH77232
CLEANSTART-2026-CI59834
CLEANSTART-2026-CK42797
CLEANSTART-2026-CL65461
CLEANSTART-2026-CN84623
CLEANSTART-2026-CP95927
CLEANSTART-2026-CR55131
CLEANSTART-2026-CY45415
CLEANSTART-2026-CZ07385
CLEANSTART-2026-DB61851
CLEANSTART-2026-DF22934
CLEANSTART-2026-DG06447
CLEANSTART-2026-DI15427
CLEANSTART-2026-DK61762
CLEANSTART-2026-DN18334
CLEANSTART-2026-DN20646
CLEANSTART-2026-DO09088
CLEANSTART-2026-DO31246
CLEANSTART-2026-DP35743
CLEANSTART-2026-EB74978
CLEANSTART-2026-EE52954
CLEANSTART-2026-EL10860
CLEANSTART-2026-EM93403
CLEANSTART-2026-EU58098
CLEANSTART-2026-EW27017
CLEANSTART-2026-FB07695
CLEANSTART-2026-FJ01373
CLEANSTART-2026-FK30234
CLEANSTART-2026-FN44356
CLEANSTART-2026-FO93349
CLEANSTART-2026-FU04414
CLEANSTART-2026-FU47971
CLEANSTART-2026-FX51482
CLEANSTART-2026-FZ57809
CLEANSTART-2026-GC37751
CLEANSTART-2026-GE08280
CLEANSTART-2026-GI67088
CLEANSTART-2026-GM09342
CLEANSTART-2026-GM63718
CLEANSTART-2026-GM81143
CLEANSTART-2026-GR41888
CLEANSTART-2026-GU95761
CLEANSTART-2026-GX29850
CLEANSTART-2026-GY48351
CLEANSTART-2026-GZ72045
CLEANSTART-2026-HA09227
CLEANSTART-2026-HB06257
CLEANSTART-2026-HF45264
CLEANSTART-2026-HJ72983
CLEANSTART-2026-HK01840
CLEANSTART-2026-HK71313
CLEANSTART-2026-HM31566
CLEANSTART-2026-HM40094
CLEANSTART-2026-HO21235
CLEANSTART-2026-HQ78610
CLEANSTART-2026-HU33730
CLEANSTART-2026-HX94762
CLEANSTART-2026-HX97842
CLEANSTART-2026-IP72442
CLEANSTART-2026-IR69938
CLEANSTART-2026-IW23933
CLEANSTART-2026-IX47217
CLEANSTART-2026-IY77127
CLEANSTART-2026-IY78242
CLEANSTART-2026-IY92636
CLEANSTART-2026-JB52011
CLEANSTART-2026-JC64695
CLEANSTART-2026-JD68539
CLEANSTART-2026-JJ84567
CLEANSTART-2026-JK38734
CLEANSTART-2026-JK84667
CLEANSTART-2026-JM96857
CLEANSTART-2026-JQ70227
CLEANSTART-2026-JT73156
CLEANSTART-2026-JW59894
CLEANSTART-2026-KA21986
CLEANSTART-2026-KK98885
CLEANSTART-2026-KR58137
CLEANSTART-2026-KT25851
CLEANSTART-2026-KW24478
CLEANSTART-2026-KW35511
CLEANSTART-2026-KY75084
CLEANSTART-2026-LA07853
CLEANSTART-2026-LB23787
CLEANSTART-2026-LC01167
CLEANSTART-2026-LD15132
CLEANSTART-2026-LG79681
CLEANSTART-2026-LI04631
CLEANSTART-2026-LM43244
CLEANSTART-2026-LM72903
CLEANSTART-2026-LN66182
CLEANSTART-2026-LO63022
CLEANSTART-2026-LP76319
CLEANSTART-2026-LS00044
CLEANSTART-2026-LS12576
CLEANSTART-2026-LT10352
CLEANSTART-2026-LU81821
CLEANSTART-2026-LZ60917
CLEANSTART-2026-MF20926
CLEANSTART-2026-MJ36694
CLEANSTART-2026-ML42911
CLEANSTART-2026-MO53190
CLEANSTART-2026-MQ21261
CLEANSTART-2026-MS81166
CLEANSTART-2026-MT27167
CLEANSTART-2026-MV81821
CLEANSTART-2026-MW24969
CLEANSTART-2026-MX15076
CLEANSTART-2026-NB55984
CLEANSTART-2026-NG75665
CLEANSTART-2026-NT10973
CLEANSTART-2026-NV36169
CLEANSTART-2026-NV78596
CLEANSTART-2026-OD56729
CLEANSTART-2026-OH43332
CLEANSTART-2026-OH47925
CLEANSTART-2026-OP90222
CLEANSTART-2026-OS42112
CLEANSTART-2026-OU18540
CLEANSTART-2026-PE63912
CLEANSTART-2026-PF41398
CLEANSTART-2026-PJ76318
CLEANSTART-2026-PK19530
CLEANSTART-2026-PK48502
CLEANSTART-2026-PP64690
CLEANSTART-2026-PS51260
CLEANSTART-2026-PV93827
CLEANSTART-2026-PW47027
CLEANSTART-2026-PW57640
CLEANSTART-2026-QA91937
CLEANSTART-2026-QF85840
CLEANSTART-2026-QJ92322
CLEANSTART-2026-QN98167
CLEANSTART-2026-QO20135
CLEANSTART-2026-QO29688
CLEANSTART-2026-QO30809
CLEANSTART-2026-QU88766
CLEANSTART-2026-QV50101
CLEANSTART-2026-QY63788
CLEANSTART-2026-RA52239
CLEANSTART-2026-RD09851
CLEANSTART-2026-RI97043
CLEANSTART-2026-RK40393
CLEANSTART-2026-RM01950
CLEANSTART-2026-RR25843
CLEANSTART-2026-RX06063
CLEANSTART-2026-RZ44006
CLEANSTART-2026-SE34232
CLEANSTART-2026-SF37618
CLEANSTART-2026-SI08105
CLEANSTART-2026-SP88135
CLEANSTART-2026-SQ18258
CLEANSTART-2026-SR26977
CLEANSTART-2026-ST75560
CLEANSTART-2026-SU44499
CLEANSTART-2026-TA27786
CLEANSTART-2026-TC31671
CLEANSTART-2026-TC76376
CLEANSTART-2026-TD06078
CLEANSTART-2026-TD94714
CLEANSTART-2026-TE02851
CLEANSTART-2026-TF98824
CLEANSTART-2026-TG67287
CLEANSTART-2026-TI57220
CLEANSTART-2026-TK06108
CLEANSTART-2026-TL66481
CLEANSTART-2026-TO88856
CLEANSTART-2026-TR92727
CLEANSTART-2026-TT42218
CLEANSTART-2026-TZ10716
CLEANSTART-2026-TZ92532
CLEANSTART-2026-UD61879
CLEANSTART-2026-UF78567
CLEANSTART-2026-UG20989
CLEANSTART-2026-UG89030
CLEANSTART-2026-UI21589
CLEANSTART-2026-UJ10620
CLEANSTART-2026-UK11127
CLEANSTART-2026-UM45661
CLEANSTART-2026-UO45926
CLEANSTART-2026-UQ00642
CLEANSTART-2026-UQ68343
CLEANSTART-2026-UY49411
CLEANSTART-2026-VD84830
CLEANSTART-2026-VN02574
CLEANSTART-2026-VP44686
CLEANSTART-2026-VU08393
CLEANSTART-2026-VX40916
CLEANSTART-2026-VY24921
CLEANSTART-2026-VZ35122
CLEANSTART-2026-VZ76006
CLEANSTART-2026-WB86581
CLEANSTART-2026-WB89098
CLEANSTART-2026-WD32090
CLEANSTART-2026-WI71304
CLEANSTART-2026-WK32717
CLEANSTART-2026-WL14185
CLEANSTART-2026-WN01990
CVE-2025-68121
ECHO-96ED-A068-F164
GO-2026-4337
MGASA-2026-0035
OESA-2026-1698
OESA-2026-1699
OESA-2026-1700
OESA-2026-1701
OESA-2026-1702
OESA-2026-1703
OPENSUSE-SU-2026:10063-1
OPENSUSE-SU-2026:10064-1
OPENSUSE-SU-2026:10220-1
OPENSUSE-SU-2026:10224-1
OPENSUSE-SU-2026:10233-1
OPENSUSE-SU-2026:10249-1
OPENSUSE-SU-2026:10256-1
OPENSUSE-SU-2026:10329-1
OPENSUSE-SU-2026:10396-1
OPENSUSE-SU-2026:20077-1
OPENSUSE-SU-2026:20085-1
OPENSUSE-SU-2026:20214-1
OPENSUSE-SU-2026:20220-1
OPENSUSE-SU-2026:20301-1
OPENSUSE-SU-2026:20308-1
OPENSUSE-SU-2026:20619-1
OPENSUSE-SU-2026:20620-1
RHSA-2026:11749
RHSA-2026:12028
RHSA-2026:12029
RHSA-2026:12030
RHSA-2026:12031
RHSA-2026:12032
RHSA-2026:12033
RHSA-2026:14868
RHSA-2026:16102
RHSA-2026:16696
RHSA-2026:17040
RHSA-2026:17084
RHSA-2026:17686
RHSA-2026:18913
RHSA-2026:19013
RHSA-2026:19475
RHSA-2026:19634
RHSA-2026:22141
RHSA-2026:22450
RHSA-2026:22714
RHSA-2026:2706
RHSA-2026:2708
RHSA-2026:2709
RHSA-2026:2914
RHSA-2026:2920
RHSA-2026:3035
RHSA-2026:3040
RHSA-2026:3092
RHSA-2026:3187
RHSA-2026:3188
RHSA-2026:3192
RHSA-2026:3193
RHSA-2026:3291
RHSA-2026:3297
RHSA-2026:3298
RHSA-2026:3336
RHSA-2026:3337
RHSA-2026:3340
RHSA-2026:3341
RHSA-2026:3343
RHSA-2026:3506
RHSA-2026:3752
RHSA-2026:3753
RHSA-2026:3816
RHSA-2026:3817
RHSA-2026:3831
RHSA-2026:3833
RHSA-2026:3839
RHSA-2026:3840
RHSA-2026:3842
RHSA-2026:3843
RHSA-2026:3864
RHSA-2026:3898
RHSA-2026:3928
RHSA-2026:3929
RHSA-2026:3970
RHSA-2026:3971
RHSA-2026:3977
RHSA-2026:3985
RHSA-2026:4164
RHSA-2026:4166
RHSA-2026:4174
RHSA-2026:4177
RHSA-2026:4256
RHSA-2026:4264
RHSA-2026:4267
RHSA-2026:4672
RHSA-2026:4892
RHSA-2026:4901
RHSA-2026:4907
RHSA-2026:4952
RHSA-2026:5077
RHSA-2026:5146
RHSA-2026:5866
RHSA-2026:5876
RHSA-2026:5968
RHSA-2026:5970
RHSA-2026:5971
RHSA-2026:6277
RHSA-2026:6278
RHSA-2026:6552
RHSA-2026:7291
RHSA-2026:7385
RHSA-2026:7854
RHSA-2026:7885
RHSA-2026:9097
RHSA-2026:9098
RHSA-2026:9108
RHSA-2026:9109
SUSE-SU-2026:0218-1
SUSE-SU-2026:0219-1
SUSE-SU-2026:0296-1
SUSE-SU-2026:0297-1
SUSE-SU-2026:0298-1
SUSE-SU-2026:0308-1
SUSE-SU-2026:0403-1
SUSE-SU-2026:0426-1
SUSE-SU-2026:0427-1
SUSE-SU-2026:0687-1
SUSE-SU-2026:0760-1
SUSE-SU-2026:0789-1
SUSE-SU-2026:0790-1
SUSE-SU-2026:0947-1
SUSE-SU-2026:0977-1
SUSE-SU-2026:20122-1
SUSE-SU-2026:20132-1
SUSE-SU-2026:20428-1
SUSE-SU-2026:20429-1
SUSE-SU-2026:20623-1
SUSE-SU-2026:20629-1
Affected Products
Go
Red Os
Rocky Linux
References · 1281
- 🔥 https://go.dev/issue/77217 · Exploit
- https://nvd.nist.gov/vuln/detail/CVE-2026-33186 · Security Note
- https://nvd.nist.gov/vuln/detail/CVE-2026-25500 · Security Note
- https://errata.almalinux.org/9/ALSA-2026-3341.html · Vendor Advisory
- https://errata.rockylinux.org/RLSA-2026:2709 · Vendor Advisory
- https://osv.dev/vulnerability/ALSA-2026:2914 · Vendor Advisory
- https://osv.dev/vulnerability/CLEANSTART-2026-HA09227 · Vendor Advisory
- https://osv.dev/vulnerability/CLEANSTART-2026-VZ35122 · Vendor Advisory
- https://osv.dev/vulnerability/CLEANSTART-2026-BK28579 · Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-27141 · Security Note
- https://osv.dev/vulnerability/CLEANSTART-2026-HB06257 · Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-22871 · Security Note
- https://osv.dev/vulnerability/CLEANSTART-2026-PK48502 · Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-1229 · Security Note
- https://linux.oracle.com/errata/ELSA-2026-3985.html · Vendor Advisory